Collaboration to produce #security processes and standards for #opensource: Today’s global software infrastructure is over 80% open source. The software stack that underpins any product with digital elements is typically built using open source software. As a result, it is fair to say that when we discuss the “software supply chain,” we are primarily, but not exclusively, referring to open source.
https://eclipse-foundation.blog/2024/04/02/open-source-community-cra-compliance/
